Amendments to the Claims 



Please cancel claims 7, 12, and 22 without prejudice. 
Please amend the claims as follows: 

1 . (Currently amended) A method comprising: 

requesting a service for a platform from a service provider; 

receiving a service key request for the service from the service provider, wherein 
the service key is to be limited restricted to one or more acceptable 
configurations of the platform , the configuration of the platform being 
represented by a set of platform configuration registers, the service 
provider having a policy regarding which configurations arc acceptable, 
the acceptable configurations being represented by allowable 
combinations of values of the platform configuration registers ; 

generating a service key pair that is limited restricted to the platform 

configuration register values for the one or more acceptable configurations 
of the platform, the service key pair including a public key and a private 
key, and returning [[a]] the public key of the key pair to the service 
provider; 

certifying the use of the service for the one or more acceptable configurations of 
the platform; and 

receiving a session key for a session of the service from the service provider, the 
sendee being limited to the one - or more acceptable configurations of the 
platform the session key being bound with the public key of the service 
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key pair, wherein the private key of the service key pair may be utilized to 
unbind the session key only if the configuration of the platform matches 
the one or more acceptable configurations to which the service key is 
restricted . 

2. (Previously presented) The method of claim 1, further comprising obtaining an 
identifying credential, wherein the identifying credential is provided to the service 
provider. 

3. (Original) The method of claim 2, wherein the identifying credential comprises an 
attestation identification key (AIK) certificate. 

4. (Original) The method of claim 2, wherein the identifying credential is obtained 
from a trusted third party. 

5. (Original) The method of claim 2, wherein the identifying credential is obtained 
through a transaction with the service provider. 

6. (Currently amended) The method of claim 1, wherein certifying the use of the 
service comprises includes a process selected from the group consisting of 
producing hash data relating to the one or more acceptable configurations; and 
confirming that a chosen configuration is included in a set of platform 
configuration register values representing the one or more acceptable 
configurations. 

7. (Cancelled) 
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8. (Currently amended) A method comprising: 

receiving a service request at a service provider from a client for a platform; 

creating a service key generation request for the client, wherein the service key is 
to be limited restricted to one or more acceptable configurations of the 
platform , the configuration of the platform being represented by a set of 
platform configuration registers, wherein a policy of the service provider 
indicates which configurations are acceptable, the acceptable 
configurations being represented by allowable combinations of values of 
the platform configuration registers ; 

receiving a public key of a service key pair from the client in response to the 

service generation request, the service key pair including the public key 
and a private key, the service key pair being limited restricted to the 
platform configuration register values of the one or more acceptable 
configurations of the platform; 

validating the service key, validation of the service key comprising receipt of 
assurance that the service is used only for one or more acceptable 
configurations for the platform; [[and]] 

binding the session key with the public key of the service key pair, wherein the 
private key of the service key pair may be utilized to unbind the session 
key only if the configuration of the platform matches the one or more 
acceptable configurations to which the service key is restricted; and 
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providing a session key for the service to the client based on the validated service 
key, the service being limited restricted to the one or more acceptable 
configurations. 

9. (Original) The method of claim 8, further comprising receiving an identifying 
credential from the client. 

10. (Original) The method of claim 9, wherein the identifying credential comprises an 
attestation identification key (AIK) certificate. 

1 1 . (Currently amended) The method of claim 8, wherein validating the service key 
comprises a process selected from the group consisting of sending a certification 
request to the client and receiving hash data relating to the one or more acceptable 
configurations; and sending a list of platform configuration register value sets for 
the one or more acceptable configurations to the client and receiving a 
confirmation that a chosen configuration is included in the list of platform 
configuration register value sets. 

12. (Cancelled) 

1 3 . (Currently amended) A client device comprising: 

a communication device to communicate with a service provider, the client device 
to request a service from the service provider for a platform; and 

a trusted platform module (TPM) to provide secure operations in connection with 
the service from the service provider; 

wherein the client device is to: 
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receive a service key request for the service from the service provider, 
wherein the service key is to be limited restricted to one or more 
acceptable configurations of the platfor m, the configuration of the 
platform being represented by a set of platform configuration 
registers, the service provider having a policy regarding which 
configurations are acceptable, the acceptable configurations being 
represented by allowable combinations of values of the platform 
configuration registers , 

generate a service key pair that is limited restricted to the platform 
configuration register values for the one or more acceptable 
configurations of the platform the service key pair including a 
public key and a private key, and return [[a]] the public key of the 
service key pair to the service provider, 

provide assurance to the service provider that the service is limited 
restricted to the one or more acceptable configurations for the 
platform, and 

receive a session key for a session of the service from the service provider, 
the service being limited to tho one or more acceptable 
configurations of the platform the session key being bound with 
the public key of the service key pair, wherein the private key of 
the service key pair may be utilized to unbind the session key only 
if the configuration of the platform matches the one or more 
acceptable configurations to which the service key is restricted . 
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14. (Original) The client device of claim 13, wherein the provision of assurance to the 
service provider comprises receiving a certification request from the service 
provider, producing hash data relating to the one or more acceptable 
configurations using the trusted platform module, and sending the hash data to the 
service provider. 

15. (Currently amended) The client device of claim 13, wherein the provision of 
assurance to the service provider comprises receiving a list of acceptable platform 
configuration register value sets relating to the one or more acceptable 
configurations and sending a confirmation that a chosen configuration is included 
in the list of acceptable platform configuration register value sets. 

16. (Currently amended) A system comprising: 

a client device, the client device comprising a trusted platform module, the client 
device to request a service for a platform of the client; and 

a service provider to provide a service to the client device, the service provider to 
receive the service request from the client and create a service key 
generation request for the client, wherein the service key is to be limited 
restricted to one or more acceptable configurations of the platfor m, the 
configuration of the platform being represented by a set of platform 
configuration registers, wherein a policy indicates which configurations 
are acceptable, the acceptable configurations being represented by 
allowable combinations of values of the platform configuration registers ; 

the client device to generate a service key pair in response , the service key pair 
including a public key and a private key, the service key pair tha£4s 
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limited being restricted to the platform configuration register values of one 
or more acceptable configurations of the platform and to return a public 
key of the key pair to the service provider, certify that the service will be 
utilized only in one or more acceptable configurations of a platform of the 
client device, and receive a session key for a session of the service from 
the service provider, the service being limited to the one or more 
acceptable configurations of the platform the session key being bound 
with the public key of the service key pair, wherein the private key of the 
service key pair may be utilized to unbind the session key only if the 
configuration of the platform matches the one or more acceptable 
configurations to which the service key is restricted . 

17. (Original) The system of claim 16, wherein the client device obtains an 
identifying credential. 

18. (Original) The system of claim 17, wherein the identifying credential comprises 
an attestation identification key (AIK) certificate. 

19. (Original) The system of claim 17, wherein the identifying credential is obtained 
from a trusted third party. 

20. (Original) The system of claim 17, wherein the identifying credential is obtained 
through a transaction with the service provider. 

21 . (Currently amended) The system of claim 16, wherein certifying the use of the 
service comprises a process selected from the group consisting of producing hash 
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data relating to the one or more acceptable configurations; and confirming that a 
chosen configuration is included in a set of platform configuration register values 
representing the one or more acceptable configurations. 

22. (Cancelled) 

23. (Currently amended) A computer-readable medium having stored thereon data 
representing sequences of instructions that, when executed by a processor, cause 
the processor to perform operations comprising: 

requesting a service for a platform from a service provider; 

receiving a service key request for the service from the service provider, where 
the service key is to be limited restricted to one or more acceptable 
configurations of the platfor m, the configuration of the platform being 
represented by a set of platform configuration registers, the service 
provider having a policy regarding which configurations are acceptable, 
the acceptable configurations being represented by allowable 
combinations of values of the platform configuration registers ; 

generating a service key pair that is limited restricted to the platform 

configuration register values for the one or more acceptable configurations 
of the platform, the service key pair including a public key and a private 
key, and returning [[a]] the public key of the key pair to the service 
provider; 

certifying the use of the service for the one or more acceptable configurations of 
the platform; and 
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receiving a session key for a session of the service from the service provider, the 
service being limited to the one or more acceptable configurations of the 
platform the session key being bound with the public key of the service 
key pair, wherein the private key of the service key pair may be utilized to 
unbind the session key only if the configuration of the platform matches 
the one or more acceptable configurations to which the service key is 
restricted . 

24. (Original) The medium of claim 23, wherein certifying the use of the service 
comprises producing hash data relating to the one or more acceptable 
configurations. 

25. (Currently amended) The medium of claim 23, wherein certifying the use of the 
service comprises confirming that platform configuration values for a chosen 
configuration [[is]] are included in a set of platform configuration register values 
representing the one or more acceptable configurations. 

26. (Currently amended) A computer-readable medium having stored thereon data 
representing sequences of instructions that, when executed by a processor, cause 
the processor to perform operations comprising: 

receiving a service request at a service provided from a client for a platform ; 

creating a service key generation request for the client, wherein the service key is 
to be limited restricted to one or more acceptable configurations of the 
platform , the configuration of the platform being represented by a set of 
platform configuration registers, wherein a policy indicates which 
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configurations are acceptable, the acceptable configurations being 

represented by allowable combinations of values of the platform 

configuration registers ; 
receiving a public key of a service key pair from the client, the service key pair 

including the public key and a private key, the service key pair being 

limited restricted to the platform configuration register values of the one 

or more acceptable configurations of the platform; 
validating the service key, validation of the service key comprising receipt of 

assurance that the service is used only for one or more acceptable 

configurations; [[and]] 
binding the session key with the public key of the service key pair, wherein the 

private key of the service key pair may be utilized to unbind the session 

key only if the configuration of the platform matches the one or more 

acceptable configurations to which the service key is restricted; and 
providing a session key for the service to client based on the validated key, the 

service being limited restricted to the one or more acceptable 

configurations. 

27. (Original) The medium of claim 26, wherein validating the service key comprises 
sending a certification request to the client and receiving hash data relating to the 
one or more acceptable configurations. 

28. (Currently amended) The medium of claim 27, wherein validating the service key 

comprises sending a list of platform configuration register value sets for the one 

or more acceptable configurations to the client and receiving a confirmation that a 
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chosen configuration is included in the list of platform configuration register 
value sets. 
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